<?php

/*
 * This file will perform the ajax for getting the documents for the search results.
 * This is being used by admDocumentSetup.php.
 * 
 * Created by: Peter Agno Jr.
 * Date created: November 21, 2011
 * 
 * In parameters: docId, docName, and docType
 * Out parameters: document information for search results
 */

session_start();

// Start - Checker for those users who will just go to the page by typing directly in the url.
if ($_POST) {
    include('../includes/siteConfig.php');
    
    // connect to database
    $connect = mysql_connect($hostName,$rootName,$dBasePassword) or die ('Unable to connect!');
    mysql_select_db($dBaseName) or die ('Unable to select database!');
    
    // Get the data from post
    $docId = $_POST['docId'];
    $docName = $_POST['docName'];
    $docType = $_POST['docType'];
    
    // Prepare filter for docId
    $filterDoc = "";
    if ( $docId != "" ) {
        $filterDoc = "WHERE documentSetupId LIKE '%" . $docId . "%' ";
    }
    
    // Prepare filter for docName
    if ( $docName != "" ) {
        if ( $filterDoc == "" ) {
            $filterDoc = "WHERE ";
        }
        else {
            $filterDoc = $filterDoc . "AND ";
        }
        
        $filterDoc = $filterDoc . "documentName LIKE '%" . $docName . "%' ";
    }
    
    // Prepare filter for docType
    if ( $docType != "All" ) {
        if ( $filterDoc == "" ) {
            $filterDoc = "WHERE ";
        }
        else {
            $filterDoc = $filterDoc . "AND ";
        }
        
        $filterDoc = $filterDoc . "type = '" . $docType . "' ";
    }
    
    // Prepare the query for getting the documents
    $query =
        "
            SELECT documentSetupId, documentName, type
            FROM DocumentSetup
            ".$filterDoc."
            ORDER BY documentName ASC
        ";
    $result = mysql_query($query) or die ('Error in query: $query. ' . mysql_error());
    
    // Identify if there were querried departments
    if ( mysql_num_rows($result) > 0 ) {
        while ($row = mysql_fetch_array($result)) {
            $jsondata = array();
            $jsondata['docId'] = $row['documentSetupId'];
            $jsondata['docName'] = $row['documentName'];
            $jsondata['docType'] = $row['type'];
            $feed[] = $jsondata;
        }
        
        echo json_encode($feed);
    }
    else {
        echo json_encode(0);
    }
    
    mysql_free_result($result);
    mysql_close($connect);
}   // End - Checker for those users who will just go to the page by typing directly in the url.
else {
    echo "You are not authorized to view this page. This incident will be reported immediately.";
}
?>
